$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e96bbb8e-db86-4398-a60a-ddece0b4a061.roa File: e96bbb8e-db86-4398-a60a-ddece0b4a061.roa (raw, json) Hash identifier: PTwmQEBq0oQVtDVa5u5GIFtTZK4IYOJI7PFyR3tCzAc= Subject key identifier: E6:FB:63:90:01:55:9F:17:9E:2B:A5:56:60:D9:F3:74:4F:FB:09:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 614D8581F8D9D858896A3D132E10EFC308B79638 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e96bbb8e-db86-4398-a60a-ddece0b4a061.roa Signing time: Mon 04 Aug 2025 16:01:50 +0000 ROA not before: Mon 04 Aug 2025 16:01:50 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.22.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:4d:85:81:f8:d9:d8:58:89:6a:3d:13:2e:10:ef:c3:08:b7:96:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:01:50 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=ce248af417bd2f4f6862f36a5a20e8212ff1317ab127c8240a8a09113434600a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:80:63:db:be:aa:35:9d:c4:71:57:d3:d0:35: 55:80:32:83:2e:a4:39:ea:cd:bd:3c:06:e7:dc:4f: 6d:e4:8c:e4:a4:c1:26:71:d5:51:b5:61:b6:55:8b: a0:e8:ef:1a:3d:eb:4a:49:65:70:9f:42:34:9d:71: e6:7f:70:ab:9f:0a:f7:44:47:6c:6c:1d:fe:0c:dc: ef:e9:c4:ba:74:49:5d:d4:69:14:0d:cb:b1:2e:cc: fe:7a:fe:dd:0f:ee:02:bd:b7:9e:b5:31:f3:3a:3f: d3:dd:f8:7d:fc:36:da:2e:a7:7d:21:c5:cc:61:b5: aa:a1:15:98:43:f5:24:cf:54:af:5d:03:20:e0:81: 51:1b:ff:c8:d6:59:af:b2:40:a3:27:72:07:4d:c2: e9:ec:c6:fe:49:4f:4f:56:ea:7d:40:7e:d0:b9:27: b4:74:42:97:fd:b5:c7:77:90:09:b2:b6:ac:5e:84: 50:72:45:69:58:89:98:20:47:10:6f:6d:a3:12:2b: f3:eb:1f:ce:d0:f8:16:ca:00:2a:63:e2:8a:ed:df: 8f:0f:e3:3f:80:fd:5a:05:c1:a3:0d:07:aa:ee:11: 7c:a5:1f:94:eb:7c:30:ee:37:3f:3e:0f:d9:60:9f: 8a:02:ca:30:d7:0f:4b:25:3f:da:a8:99:df:43:ad: 8b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:FB:63:90:01:55:9F:17:9E:2B:A5:56:60:D9:F3:74:4F:FB:09:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e96bbb8e-db86-4398-a60a-ddece0b4a061.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.22.73.0/24 Signature Algorithm: sha256WithRSAEncryption 21:42:0b:ea:ca:f5:9a:71:86:e4:33:ad:71:d6:79:bd:44:ff: 26:b4:c4:8f:81:8d:00:03:3d:46:9a:10:85:ed:59:5c:52:32: c0:24:55:26:03:6e:7b:42:56:c1:1f:ea:ef:67:f8:5f:b9:c3: 33:59:39:0e:96:9c:cc:c9:cc:ec:f6:ac:6a:35:cd:71:70:3f: 89:70:16:99:02:7d:7a:7b:d6:b1:3a:0e:2b:0f:0a:71:e5:6d: ba:4c:a7:c0:6c:f8:53:48:da:6c:4a:89:e8:4a:2d:2d:a6:e8: cb:e4:74:f8:64:92:2f:8b:d2:5c:e2:ef:f9:c0:e5:98:05:25: 55:69:b9:f7:af:5a:0d:d0:7b:c8:5e:47:b2:12:0a:ce:dc:de: 61:e6:95:20:63:0d:4e:c9:22:5c:d8:4c:b9:e4:8d:29:5e:62: 06:44:15:21:16:f7:a3:56:4b:87:ba:5e:3b:27:1d:60:77:20: 1c:27:52:bf:92:fa:b3:98:61:bf:6e:62:f3:3b:24:6e:12:0a: 51:90:19:f4:31:0a:c1:77:1f:cf:5a:ac:b7:15:c5:ac:c1:5e: 03:42:2e:02:7e:ca:48:81:54:bb:0e:12:00:00:77:e8:44:f9: d5:70:d2:52:1b:b0:09:fe:79:54:30:5e:78:56:b3:67:ec:1e: 44:93:9c:29 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYU2FgfjZ2FiJaj0TLhDvwwi3ljgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTYwMTUwWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZTI0OGFmNDE3YmQyZjRmNjg2MmYzNmE1YTIwZTgyMTJm ZjEzMTdhYjEyN2M4MjQwYThhMDkxMTM0MzQ2MDBhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSgGPbvqo1ncRxV9PQNVWAMoMupDnqzb08BufcT23kjOSk wSZx1VG1YbZVi6Do7xo960pJZXCfQjSdceZ/cKufCvdER2xsHf4M3O/pxLp0SV3U aRQNy7EuzP56/t0P7gK9t561MfM6P9Pd+H38Ntoup30hxcxhtaqhFZhD9STPVK9d AyDggVEb/8jWWa+yQKMncgdNwunsxv5JT09W6n1AftC5J7R0Qpf9tcd3kAmytqxe hFByRWlYiZggRxBvbaMSK/PrH87Q+BbKACpj4ort348P4z+A/VoFwaMNB6ruEXyl H5TrfDDuNz8+D9lgn4oCyjDXD0slP9qomd9DrYsRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5vtjkAFVnxeeK6VWYNnzdE/7CQUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U5NmJiYjhlLWRiODYtNDM5OC1hNjBhLWRkZWNlMGI0YTA2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAXFkkwDQYJKoZIhvcNAQELBQADggEBACFCC+rK9ZpxhuQzrXHWeb1E/ya0 xI+BjQADPUaaEIXtWVxSMsAkVSYDbntCVsEf6u9n+F+5wzNZOQ6WnMzJzOz2rGo1 zXFwP4lwFpkCfXp71rE6DisPCnHlbbpMp8Bs+FNI2mxKiehKLS2m6MvkdPhkki+L 0lzi7/nA5ZgFJVVpufevWg3Qe8heR7ISCs7c3mHmlSBjDU7JIlzYTLnkjSleYgZE FSEW96NWS4e6XjsnHWB3IBwnUr+S+rOYYb9uYvM7JG4SClGQGfQxCsF3H89arLcV xazBXgNCLgJ+ykiBVLsOEgAAd+hE+dVw0lIbsAn+eVQwXnhWs2fsHkSTnCk= -----END CERTIFICATE-----Generated at Mon Aug 4 21:49:42 2025 by rpki-client